CVE Vulnerability

CVE-2020-15261

On Windows the Veyon Service before version 4.4.2 contains an unquoted service path vulnerability, allowing locally authenticated users with administrative privileges to run malicious executables with LocalSystem privileges. Since Veyon users (both students and teachers) usually don't have administrative privileges, this vulnerability is only dangerous in anyway unsafe setups. The problem has been fixed in version 4.4.2. As a workaround, the exploitation of the vulnerability can be prevented by revoking administrative privileges from all potentially untrustworthy users.

7.2 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

6.7 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/veyon/veyon/commit/f231ec511b9a09f43f49b2c7bb7c60b8046276b1 Patch Third Party Advisory
https://github.com/veyon/veyon/security/advisories/GHSA-c8cc-x786-hqqp Third Party Advisory
https://github.com/veyon/veyon/issues/657 Issue Tracking Third Party Advisory
http://packetstormsecurity.com/files/162873/Veyon-4.4.1-Unquoted-Service-Path.html Exploit Third Party Advisory
https://www.exploit-db.com/exploits/49925 Exploit Third Party Advisory
https://www.exploit-db.com/exploits/48246 Exploit Third Party Advisory
Configurations

Configuration 1
Information

Published : 2020-10-19 10:15

Updated : 2022-10-18 08:13

NVD link : CVE-2020-15261

Mitre link : CVE-2020-15261

Products Affected
No products.
CWE
CWE-428